NETWORK ADDRESS CONVERSION SYSTEM FOR ENABLING 
ACCESS TO A NODE HAVING A PRIVATE IP ADDRESS, 
A METHOD THEREFOR, AND A RECORDING MEDIUM FOR 
RECORDING THE METHOD 

BACKGROUND OF THE INVENTION 

Field of the Invention 

The present invention relates to a network address conversion system, 
and in particular to a network address conversion system for enabling access 
5 to a node having a private IP address, a method therefor, and a recording 
medium for recording the method. The present application is based on Korean 
Patent Application No. 2000-49934, which is incorporated herein by reference. 



Description of the Related Art 

10 Recently, a number of information communication devices such as 

computers, faxes, modems, and telephones can be used in a network in a 
single office. 

The networks provided in small office home offices (SOHO) and 
homes are mostly private networks, in which a gateway has a global IP 
15 address, while the other information communication devices do not have 
global IP addresses. 



1 



Accordingly, the respective information communication devices (that 
is, network nodes) of the private network have private IP addresses which can 
only be used for internal purpose. 

The private IP address is provided by a network administrator or 
5 automatically provided through a communication protocol, such as Dynamic 
Host Configuration Protocol (DHCP). 
r== In addition, the network nodes have port numbers. At this time, the 

ifl port number implies a communication protocol in the network node. 

Il| However, it is expected that the network nodes of the private network 

Q 10 having the private IP addresses will have to provide services to external 

network nodes on the Internet. 
J« For this, the external Internet must be able to access the network nodes 

,/f of the private network. 

Currently, the gateway (network entrypoint) of the private network 
15 converts the private IP address of the private network into a public IP address, 
and thus the network node using the private IP address of the private network 
can access a node of the Internet to use services. 

As an exemplary address conversion method, there is a network 
address port translation (NAPT). In the NAPT, when the network node of the 
20 private network intends to access the external node, a node corresponding to a 
network entrypoint allocates an external port value, thereby externally 
transmitting a packet. 
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A conventional network address conversion system on the Internet will 
now be explained with reference to the accompanying drawings. 

FIG. 1 is a structure diagram illustrating a general network system on 
the Internet. 

5 As illustrated in FIG. 1, a private network 20 is a SOHO or home 

network which connects a plurality of information communication devices. 

The private network 20 includes one gateway node 21 and a plurality 
of network nodes 20a, 20b, 20n. The gateway node 21 is a modem, router, 
gateway or switch which has a public IP address. The private network 20 is 
1 0 connected to the Internet 1 0 through the gateway node 2 1 . 

In addition, the plurality of network nodes 20a, 20b, 20n are 
information communication devices connected through the network, such as 
desktop computers, notebook computers, printers, and faxes. 

The network nodes 20a, 20b, 20n have private IP addresses 
1 5 internally used in the private network 20. 

Here, the public IP address of the private network 20 is SIP, and the 
private IP addresses and port numbers of the nodes 20a-20n are respectively 
(LTP1, LPN1), (LIP2, LPN2), and (LIPn, LPNn). 

A few private networks such as an office network 30 and a home 
20 network 40 are connected to the Internet. 

A network node 12 has a public IP address and provides a service on 
the Internet. The public IP address and port number of the network node 12 
are DIP and PD. 
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The private network nodes of the office network 30 and the home 
network 40 can access the network node 12 in order to receive the Internet 
service from the network node 12. 

A conventional network address conversion method when the node 20a 
5 accesses the network node 12 will now be described. 

FIG. 2 is a flowchart showing sequential steps of the conventional 
network address conversion method, and FIG. 3 shows a signal flow in a state 
where the network node of the private network accesses an external network 
node of the Internet. 

10 In FIG. 3, D denotes an address and port number of a destination, and 

S denotes an address and port number of a source. 

First, the node 20a of the private network 20 transmits a packet to the 
network node 12 to use services (step S202). The packet includes the address 
and port information (LIP1, LPN1) of the source and the address and port 
1 5 information (DIP, PD) of the destination. 

The gateway node 21 having the public IP address receives the packet 
(step S204), allocates a new port number Px to the private IP address and port 
number (LIP1, LPN1) of the source node 20a (step S206), and records a 
mapping relation in a conversion table (step S208). 
20 Thereafter, the gateway node 21 converts the source information of the 

received packet, by using the public IP address SIP and the newly-allocated 
port number Px (step S210). 

(LfPl, LPN1) -» (SIP, Px) 



The gateway node 21 transmits the converted packet through the 
Internet. According to the source information, the packet is transmitted to the 
network node 12 (step S212). 

The network node 12 performs an operation according to the contents 
5 of the packet, generates a response packet, and transmits the response packet 
through the Internet (step S214). 

Here, the source information and the destination information are 
exchanged, and thus the destination information becomes (SIP, Px). 

According to the destination information, the response packet is 
10 transmitted to the gateway node 21 of the private network 20 which has the 
public IP address of SIP. 

The gateway node 21 receiving the response packet converts the port 
number Px of the destination information into a value stored in the conversion 
table (step S216). 
15 (Px)->(LIP1,LPN1) 

Therefore, the response packet is transmitted to the node 20a having 
the address and port number of (LIP1, LPN1), namely the node transmitting 
the packet requesting use of the services (step S218). 

On the other hand, the gateway node 21 deletes the value stored in the 
20 conversion table (step S220). 

As described above, in the conventional network address conversion 
system on the Internet, the node of the private network can transmit data to the 
external node of the Internet. 



However, the private IP address cannot be used on the Internet. As a 
result, the Internet node cannot demand a service from the node of the private 
network. 

SUMMARY OF THE INVENTION 

5 Accordingly, an object of the present invention is to provide a network 

address conversion system for enabling access to a network node of a private 
network having a private IP address, a method therefor, and a recording 
medium for recording the method. 

In order to achieve the above-described object of the present invention, 

10 there is provided a network address conversion system for enabling access to a 
node of a private network having a private IP address, including a reservation 
unit for receiving an access reservation demand from an external network 
node to access a specific node of the private network; an external port value 
allocation unit for allocating the external port value to the specific node, and 

15 transmitting the external port value to the external network node; a mapping 
table for storing the external port value; and an address conversion unit for 
converting the external port value into a private IP address of the specific node, 
when the external network node accesses the specific node by using the 
external port value. 

20 In addition, there is provided a network address conversion method for 

enabling access to a node of a private network having a private IP address, 
including the steps of receiving an access reservation demand from an external 
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network node to access a specific node of the private network; allocating the 
external port value to the specific node, storing the external port value in a 
mapping table, and transmitting the external port value to the external network 
node; and converting the external port value into a private IP address of the 
5 specific node, when the external network node accesses the specific node by 
using the external port value. 

The above object of the present invention is also accomplished by a 
recording medium for recording a network address conversion method for 
enabling access to a node of a private network having a private IP address, the 

10 recording medium recording a program for executing on a computer, the steps 
of receiving an access reservation from an external network node to access a 
specific node of the private network; allocating the external port value to the 
specific node, storing the external port value in a mapping table, and 
transmitting the external port value to the external network node; and 

1 5 converting the external port value into a private IP address of the specific node, 
when the external network node accesses the specific node by using the 
external port value. 

BRIEF DESCRIPTION OF THE DRAWINGS 

A more complete appreciation of the invention, and many of the 
20 attendant advantages thereof, will be readily apparent as the same becomes 
better understood by reference to the following detailed description when 
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considered in conjunction with the accompanying drawings in which like 
reference symbols indicate the same or similar components, wherein: 

FIG. 1 is a structure diagram illustrating a general network system on 
the Internet; 

5 FIG. 2 is a flowchart showing sequential steps of a conventional 

network address conversion method; 

FIG. 3 shows a signal flow in a state where a node of a private network 
accesses an external network node of the Internet; 

FIG. 4 is a block diagram illustrating a network address conversion 
1 0 system in accordance with the present invention; 

FIG. 5 is a flowchart of the process in which an external network node 
of the Internet makes a reservation to access a specific node of the private 
network; 

FIG. 6 is a flowchart of the process in which the external network node 
1 5 accesses the reserved node of the private network; 

FIG. 7 shows a signal flow during the process of FIG. 6; and 
FIG. 8 is a flowchart of the process in which access reservation is 
cancelled. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 

20 A network address conversion system for enabling access to a node 

having a private IP address, a method therefor, and a recording medium for 
recording the method in accordance with the preferred embodiments of the 
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present invention will now be described in greater detail with reference to the 
accompanying drawings. 

In the general network system on the Internet shown in FIG. 1, the 
external network node 12 of the Internet is able to access the specific node (for 
5 example, node 20a) of the private network through the network address 
conversion system. 

FIG. 4 is a block diagram illustrating the network address conversion 
system in accordance with the present invention. 

Referring to FIG. 4, the network address conversion system 40 
10 includes an input unit 42, a reservation unit 44, an external port value 
allocation unit 46, a mapping table 48, an address conversion unit 50, and an 
output unit 52. 

The reservation unit 44 receives an access reservation demand or 

reservation cancel demand from the external network node with regard to the 
15 specific node of the private network which does not have a public IP address, 

but a private IP address. 

When receiving the access reservation demand, the reservation unit 44 

demands the external port value allocation unit 46 to allocate an external port 

value of the reserved node. 
20 Then, the external port value allocation unit 46 allocates the external 

port value to access the reserved node of the private network, and stores the 

external port value in the mapping table 48. 
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When the external network node accesses the reserved node of the 
private network by using the external port value, the address conversion unit 
50 converts the external port value into the private IP address of the reserved 
node. 

5 The network address conversion method, which is implemented while 

the external network node accesses the specific node of the private network 
which has a private IP address, will now be explained. 

FIG. 5 is a flowchart of the process in which the external network node 
makes a reservation for access to the specific node of the private network. 
10 First, the network node 12 accesses the gateway node 21 of the private 

network 20 by using the public IP address of the private network 20, and 
demands an access reservation for an access wanted node (step S302). 

Here, the access wanted node to which the network node 12 intends to 
access is the node 1 20a, and the private IP address and port number of the 
15 node 1 20a are (LIP1, LPN1). 

The gateway node 21 allocates a new port number Px to the private IP 
address and port number (LIP1, LPN) of the node 20a (step S304), and stores 
the port number in the mapping table (step S306). 
(LIPl,LPNl)->(Px) 
20 Thereafter, the gateway node 21 transmits the information of the 

allocated port number to the network node 12 which has demanded the 
reservation (step S308). 
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FIG. 6 is a flowchart of the process in which the external network node 
accesses the reserved node of the private network, and FIG. 7 shows a signal 
flow during the process of FIG. 6. 

In the drawings, a reference character 'D' denotes an address and port 
5 number of a destination, and 'S' denotes an address and port number of a 
source. 

The network node 12, which demanded an access reservation through 
the process of FIG. 5, is informed of the port number allocated to the node 20a 
of the private network 20. 
10 The network node 12 transmits a service demand packet to the node 

20a of the private network 20 through the Internet, by using the allocated port 
number (step S402). 

The destination information of the service demand packet includes the 
public IP address SIP of the gateway of the private network 20 and the 
1 5 allocated port number Px. 

The gateway node 21 having the public IP address SIP receives the 
service demand packet (step S404). 

Thereafter, the gateway node 21 obtains necessary information from 
the mapping table in order to access the destination node of the private 
20 network (step S406). 

That is, the gateway node 21 converts the port number Px of the 
received packet into the corresponding private IP address and port number 
(LIP1, LPN1) on the basis of the mapping table (step S408). 



(SIP, Px) -» (LIP1, LPN1) 

The gateway node 21 transmits the packet to the node 1 20a of the 
private network 20 corresponding to the converted private IP address and port 
number (LIP1, LPN1) (step S410). 
5 The node 1 20a performs an operation according to the packet, 

generates a response packet, and transmits it through the Internet (step S412). 

Here, the source information and the destination information are 
exchanged. Thus, the source information is the private IP address and port 
number (LIP1, LPN1), and the destination information is (DIP, PD). 
10 The response packet is transmitted to the gateway node 21 of the 

private network 20. The source information (LIP1, LPN1) is converted to the 
public IP address of the gateway node 21 and the allocated port value (step 
S414). 

(LIP1,LPN1)-^(SIP, Px) 
15 When the source information is varied, the response packet is 

transmitted to the network node 12 having the public IP address and port 
number of (DIP, PD) (step S416). 

On the other hand, the external network node 12 of the Internet can 
demand to cancel an access reservation for the wanted node. 
20 FIG. 8 is a flowchart of the process in which an access reservation is 

cancelled. 

The external network node 12 transmits an access reservation cancel 
demand packet for the reserved node to the gateway node 21 (step S502). 



The gateway node 21 receiving the access reservation cancel demand 
packet for the reserved node deletes the port number, which is allocated to the 
reserved node, from the mapping table (step S504). 

Thereafter, the gateway node 21 transmits the response packet to the 
5 network node 12 of the Internet in order to notify the network node 12 that the 
access reservation is cancelled. Accordingly, the allocated port number can be 
used when another node is reserved. 

Although the preferred embodiment of the present invention has been 
described, it is understood that the present invention should not be limited to 
10 this preferred embodiment but various changes and modifications can be made 
by one skilled in the art within the spirit and scope of the present invention as 
hereinafter claimed. 

In accordance with the present invention, the external network node of 
the Internet can access the network node of the private network having the 
1 5 private IP address . 

Moreover, the users who have a private network such as a SOHO or 
home network can provide their services through the Internet. 

As a result, individuals or small business owners can provide various 
services through the Internet. 
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